ApplicationInspector
ApplicationInspector copied to clipboard
microsoft
A source code analyzer built for surfacing features of interest and other characteristics to answer the question 'What's in the code?' quickly using static analysis with a json based rules engine. Ide...
I dont unerstand why sometimes when I scan my python project (as folder with my main.py, all libraries and etc) it gives me an empty output.html and "0 matches, X...
After Running scan with CLI command , Report created successfully. Report - Feature Group Links are not been displayed , Missing image and link on the list. Reproduced on Edge...
When creating an analyze command the "ConfigSourceToScan" and "ConfigRules" methods are called from the constructor. These methods may throw exceptions, and those exceptions are printed to the console with the...
**Is your feature request related to a problem? Please describe.** When outputting sarif you can specify the repository uri and commit. We should be able to programatically fetch that automatically....
See #378 for screenshots. The tags are being picked up (its showing that they have medium confidence so they are clearly being activated) but they don't light up blue like...
This can enhance authentication detection and in fact is an example of other types of API's that may do similar things but that are not yet in the ruleset. https://gist.github.com/kmcquade/33860a617e651104d243c324ddf7992a
I'm not sure how exactly this applies to other languages but this is a particular issue in C#. Using Reflection can allow for dynamic behavior at runtime, including dynamic access...
**Is your feature request related to a problem? Please describe.** The local HTML file can get very large; architecturally, embedding everything in it may not be the best solution. **Describe...